securityhttp://www.pcper.com
PC Perspectivehttp://www.pcper.com/images/podcast-logo-600x600.pngenDon't let todays WiFi security Krack drive you into a panichttps://www.pcper.com/news/General-Tech/Dont-let-todays-WiFi-security-Krack-drive-you-panic
<p>If you are running Windows 7 or a more recent version and <a href="https://www.theverge.com/2017/10/16/16481818/wi-fi-attack-response-security-patches">applied the patches from last Tuesday</a> then you are essentially immune to KRACK attack, however older Android OS, Chromium, Linux, OpenBSD and Android Wear 2.0 are. There are several attacks that can be carried out via this vulnerability but all rely on modifying the key which connected devices use to protect data transferred over the wireless network.&nbsp; KRACK replaces that key with one which the attacker has crafted, which allows them to intercept and decrypt packages sent over the wireless network, or to send there own disguised as an authenticated system.&nbsp; Depending on the security you use and the OS you are on the attacker can carry out a variety of tasks, <a href="https://arstechnica.com/information-technology/2017/10/how-the-krack-attack-destroys-nearly-all-wi-fi-security/">which Ars Technica describes in full</a>.</p>
<p>If you are running an older Android device, especially one which no longer receives regular updates you should be concerened, Apple will offer a patch soon as will Google; for now if you have an up to date installation of Windows, the risks have been minimized thanks to the recent patches from Microsoft.</p>
<p class="rtecenter"><div class = "center-article-image"><a href="/news/General-Tech/Dont-let-todays-WiFi-security-Krack-drive-you-panic" class="inline-image-link" title="View: 478888602.jpg"><img src="/files/imagecache/article_max_width/news/2017-10-16/478888602.jpg" alt="478888602.jpg" title="478888602.jpg" class="pcper-inline" width="408" height="612" /></a></div></p>
<blockquote><p>&quot;While Windows and iOS devices are immune to one flavor of the attack, they are susceptible to others. And all major operating systems are vulnerable to at least one form of the KRACK attack. And in an addendum posted today, the researchers noted that things are worse than they appeared at the time the paper was written.&quot;</p>
</blockquote>
<p>Here is some more Tech News from around the web:</p>
<p><b><a href="http://forums.pcper.com/forumdisplay.php?f=54">Tech Talk</a></b></p>
<ul>
<li><a href="https://tech.slashdot.org/story/17/10/15/2046255/dubai-police-get-hoverbikes" target="_blank">Dubai Police Get Hoverbikes @ Slashdot</a></li>
<li><a href="http://www.theregister.co.uk/2017/10/13/it_at_sea_makes_data_too_easy_to_see/" target="_blank">IT at sea makes data too easy to see: Ships are basically big floating security nightmares @ The Register</a></li>
<li><a href="http://www.theregister.co.uk/2017/10/15/advanced_linux_sound_architecture_vulnerable_to_privilege_escalation/" target="_blank">Linux vulnerable to privilege escalation @ The Register</a></li>
<li><a href="https://www.nikktech.com/main/articles/gadgets/portable-batteries/8333-romoss-u-style-red-10000mah-power-bank-review" target="_blank">Romoss U-Style Red 10000mAh Power Bank Review @ NikKTech</a></li>
</ul>
<p></p>
<p><a href="https://www.pcper.com/news/General-Tech/Dont-let-todays-WiFi-security-Krack-drive-you-panic" target="_blank">read more</a></p>https://www.pcper.com/news/General-Tech/Dont-let-todays-WiFi-security-Krack-drive-you-panic#commentsGeneral TechkracksecuritywifiMon, 16 Oct 2017 18:41:39 +0000Jeremy Hellstrom68610 at https://www.pcper.comWant another reason to dump that HDD? It can be used as a microphonehttps://www.pcper.com/news/General-Tech/Want-another-reason-dump-HDD-It-can-be-used-microphone
<p>Some of you may remember the days when it was inadvisable to <a href="https://www.youtube.com/watch?v=tDacjrSCeq4">yell at a HDD array</a>, the latency issue has been mostly overcome with the advances in technology over the last decade.&nbsp; That does not mean it is completely gone, as the read head in a HDD cannot read from a disk that is oscillating due to external input such as sound, and those tiny delays are how this researcher was able to use the HDD as a low quality microphone.&nbsp; He also found a tone which created even more latency than in that video; enough to have a system drop the disk as bad.&nbsp; <a href="https://hardware.slashdot.org/story/17/10/12/2236240/researcher-turns-hdd-into-rudimentary-microphone">There are links to the research over at Slashdot</a>, including the new improved way to verbally abuse your storage devices.</p>
<p class="rtecenter"><div class = "center-article-image"><a href="/news/General-Tech/Want-another-reason-dump-HDD-It-can-be-used-microphone" class="inline-image-link" title="View: index.jpg"><img src="/files/imagecache/article_max_width/news/2017-10-13/index.jpg" alt="index.jpg" title="index.jpg" class="pcper-inline" width="261" height="193" /></a></div></p>
<blockquote><p>&quot;It&#39;s not accurate yet to pick up conversations,&quot; Ortega told Bleeping Computer in a private conversation. &quot;However, there is research that can recover voice data from very low-quality signals using pattern recognition. I didn&#39;t have time to replicate the pattern-recognition portion of that research into mine. However, it&#39;s certainly applicable.&quot;</p>
</blockquote>
<p>Here is some more Tech News from around the web:</p>
<p><b><a href="http://forums.pcper.com/forumdisplay.php?f=54">Tech Talk</a></b></p>
<ul>
<li><a href="http://www.digitimes.com/news/a20171012PD212.html" target="_blank">Acer to become holding company, says Stan Shih @ DigiTimes</a></li>
<li><a href="https://arstechnica.com/gadgets/2017/10/samsung-electronics-ceo-resigns-says-company-is-in-unprecedented-crisis/" target="_blank">Samsung Electronics CEO resigns, says company is in &ldquo;unprecedented crisis&rdquo; @ Ars Technica</a></li>
<li><a href="http://www.theregister.co.uk/2017/10/12/microsoft_windows_bsod_patch_tuesday/" target="_blank">It&#39;s Patch Blues-day: Bad October Windows updates trigger BSODs @ The Register</a></li>
<li><a href="https://hardware.slashdot.org/story/17/10/12/2155230/the-real-inside-story-of-how-commodore-failed" target="_blank">The Real Inside Story of How Commodore Failed @ Slashdot</a></li>
<li><a href="http://www.theregister.co.uk/2017/10/12/openxchange_imap_chat_killer_app/" target="_blank">Open source sets sights on killing WhatsApp and Slack @ The Register</a></li>
</ul>
<p></p>
<p><a href="https://www.pcper.com/news/General-Tech/Want-another-reason-dump-HDD-It-can-be-used-microphone" target="_blank">read more</a></p>https://www.pcper.com/news/General-Tech/Want-another-reason-dump-HDD-It-can-be-used-microphone#commentsGeneral TechhackhddmicrophoneparanoiasecurityFri, 13 Oct 2017 17:01:08 +0000Jeremy Hellstrom68597 at https://www.pcper.comICANN not update the root KSK system on schedulehttps://www.pcper.com/news/General-Tech/ICANN-not-update-root-KSK-system-schedule
<p>ICANN have had to delay their planned upgrade to the root key signing keys used by DNS thanks to between 5-8% of key validators lacking the new KSK key.&nbsp; If a validator only possess the 2010 key, they would no longer be able to resolve DNS properly and the vast majority of the internet would disappear for stuck on the old system.&nbsp; The Register points out that the problem will actually be much larger as ICANN assumed that everyone has updated to the newest version of BIND DNS database, and only scanned those validators using the newest version.&nbsp;</p>
<p>The reason for the update is to increase the length of the root KSK that DNS depends on, which will greatly increase the security of anyone surfing the net and to help move this forward ICANN will be publishing a list of those out of date validators in the hopes publicity will spur them to upgrade.&nbsp; As with IPv6, we will wait and see.</p>
<p class="rtecenter"><div class = "center-article-image"><a href="/news/General-Tech/ICANN-not-update-root-KSK-system-schedule" class="inline-image-link" title="View: dnskeyen.PNG"><img src="/files/imagecache/article_max_width/news/2017-09-29/dnskeyen.PNG" alt="dnskeyen.PNG" title="dnskeyen.PNG" class="pcper-inline" width="586" height="255" /></a></div></p>
<blockquote><p>&quot;A multi-year effort to update the internet&#39;s overall security has been put on hold just days before it was due to be introduced, over fears that as many as 60 million people could be forced offline.&quot;</p>
</blockquote>
<p>Here is some more Tech News from around the web:</p>
<p><b><a href="http://forums.pcper.com/forumdisplay.php?f=54">Tech Talk</a></b></p>
<ul>
<li><a href="https://www.phoronix.com/scan.php?page=article&amp;item=firefox-quantum-bench&amp;num=1" target="_blank">Benchmarks Show Firefox 57 Quantum Doing Well, But Chrome Largely Winning @ Phoronix</a></li>
<li><a href="http://www.digitimes.com/news/a20170929PR201.html" target="_blank">TSMC announces plan to build 3nm fab in Taiwan @ DigiTimes</a></li>
<li><a href="https://www.theinquirer.net/inquirer/news/3018352/microsoft-continues-linux-love-in-by-joining-the-open-source-initiative" target="_blank">Microsoft continues Linux love-in by joining the Open Source Initiative @ The Inquirer</a></li>
<li><a href="https://news.microsoft.com/2017/09/25/microsoft-helps-customers-digitally-transform-their-businesses-with-cloud-ai-and-mixed-reality-while-also-advancing-the-next-frontier-of-computing/?MC=Windows&amp;MC=WinServer&amp;MC=OfficeO365&amp;MC=SQL&amp;MC=MSAzure" target="_blank">Ignite Overview @ Microsoft</a></li>
<li><a href="http://www.theregister.co.uk/2017/09/28/microsoft_gives_all_staff_marked_up_employee_edition_of_satya_nadellas_new_book/" target="_blank">Microsoft gives all staff a marked-up &#39;Employee Edition&#39; of Satya Nadella&#39;s new book @ The Register</a></li>
<li><a href="https://www.linux.com/learn/intro-to-linux/2017/9/zorinos-great-linux-desktop-any-user" target="_blank">ZorinOS Is a Great Linux Desktop For Any User @ Linux.com</a></li>
<li><a href="http://www.theregister.co.uk/2017/09/28/linux_kernel_vuln/" target="_blank">Patch alert! Easy-to-exploit flaw in Linux kernel rated &#39;high risk&#39; @ The Register</a></li>
<li><a href="https://yro.slashdot.org/story/17/09/28/2016230/air-force-gives-10-year-old-orbiting-satellite-to-ham-radio-operators" target="_blank">Air Force Gives 10-Year-Old Orbiting Satellite To Ham Radio Operators @ Slashdot</a></li>
<li><a href="https://www.theinquirer.net/inquirer/news/3018321/whole-foods-hacked-and-credit-card-info-bagged" target="_blank">Whole Foods hacked and credit card info bagged @ The Inquirer</a></li>
<li><a href="https://www.techpowerup.com/reviews/E-Win/FL_BA3A/" target="_blank">E-Win Flash Series Gaming Chair @ TechPowerUp</a></li>
</ul>
<p>&nbsp;</p>
<p><a href="https://www.pcper.com/news/General-Tech/ICANN-not-update-root-KSK-system-schedule" target="_blank">read more</a></p>https://www.pcper.com/news/General-Tech/ICANN-not-update-root-KSK-system-schedule#commentsGeneral TechbinddnsicannksknetworkingsecurityFri, 29 Sep 2017 16:53:29 +0000Jeremy Hellstrom68520 at https://www.pcper.comSkimmer Scanner, a start to protecting yourself at the pumphttps://www.pcper.com/news/General-Tech/Skimmer-Scanner-start-protecting-yourself-pump
<p>If you haven&#39;t seen the lengths which scammers will go to when modifying ATMs to steal your bank info you should really <a href="https://www.google.ca/search?q=bank+card+skimmer&amp;dcr=0&amp;source=lnms&amp;tbm=isch&amp;sa=X&amp;ved=0ahUKEwjgufPbvsHWAhXIPxQKHXg9BksQ_AUICigB&amp;biw=1286&amp;bih=772">take a look at these pictures</a> and get in the habit of yanking on the ATM&#39;s fascia and keyboard before using them.&nbsp; Unfortunately <a href="https://hackaday.com/2017/09/20/seriously-is-it-that-easy-to-skim-cards/">as Hack a Day posted about last week</a>, the bank is not the only place you have to be cautious, paying at the pump can also expose your details.&nbsp; In this case it is not a fake front which you need to worry about, instead a small PIC microcontroller is attached to the serial connection between card reader and pump computer, so it can read the unencrypted PIN and data and then store the result in an EEPROM device for later collection.&nbsp; The device often has Bluetooth connectivity so that the scammers don&#39;t need to drive right up to the pump frequently.</p>
<p><a href="https://hackaday.com/2017/09/25/seek-out-scammers-with-skimmer-scanner/">There is an app you can download</a> that might be able to help stop this, an app on Google Play will detect Bluetooth devices utilizing the standard codes the skimmers use and alert you.&nbsp; You can then tweet out the location of the compromised pump to alert others, and hopefully letting the station owner and authorities know as well.&nbsp; The app could be improved with automatic reporting and other tools, so check it out and see if you can help improve it as well as keeping your PIN and account safe when fuelling up.&nbsp;</p>
<p class="rtecenter"><div class = "center-article-image"><a href="/news/General-Tech/Skimmer-Scanner-start-protecting-yourself-pump" class="inline-image-link" title="View: Skimmers-Main.jpg"><img src="/files/imagecache/article_max_width/news/2017-09-25/Skimmers-Main.jpg" alt="Skimmers-Main.jpg" title="Skimmers-Main.jpg" class="pcper-inline" width="600" height="292" /></a></div></p>
<blockquote><p>&quot;It would be nice to think that this work might draw attention to the shocking lack of security in gas pumps that facilitates the skimmers, disrupt the finances of a few villains, and even result in some of them getting a free ride in a police car. We can hope, anyway.&quot;</p>
</blockquote>
<p>Here is some more Tech News from around the web:</p>
<p><b><a href="http://forums.pcper.com/forumdisplay.php?f=54">Tech Talk</a></b></p>
<ul>
<li><a href="http://techreport.com/news/32594/intel-warms-up-coffee-lake-with-eighth-gen-desktop-core-details" target="_blank">Intel warms up Coffee Lake with eighth-gen desktop Core details @ The Tech Report</a></li>
<li><a href="https://tech.slashdot.org/story/17/09/25/142200/microsoft-teams-is-replacing-skype-for-business-to-put-more-pressure-on-slack" target="_blank">Microsoft Teams is Replacing Skype for Business To Put More Pressure on Slack @ Slashdot</a></li>
<li><a href="https://www.theinquirer.net/inquirer/news/3018019/deloitte-hack-exposes-secret-emails-and-plans-from-firms-blue-chip-clients" target="_blank">Deloitte hack exposes secret emails and plans from firm&#39;s blue-chip clients @ The Inquirer</a></li>
<li><a href="https://tech.slashdot.org/story/17/09/25/1553249/showtime-websites-are-mining-monero-with-your-cpu-unclear-if-hack-or-experiment" target="_blank">Showtime Websites Are Mining Monero With Your CPU, Unclear If Hack Or Experiment @ Slashdot</a></li>
<li><a href="http://www.theregister.co.uk/2017/09/22/ifixit_iphone8_repairability_verdict/" target="_blank">If you need to replace anything other than your iPhone 8&#39;s battery or display, good luck @ The Register</a></li>
<li><a href="https://www.techspot.com/article/1494-reality-distortion-field-iphone-x/" target="_blank">Reality Distortion Field: 10 Things Apple Won&#39;t Directly Say But We&#39;ll Infer About the iPhone X @ Techspot</a></li>
<li><a href="https://www.phoronix.com/scan.php?page=article&amp;item=asus-tinker-board&amp;num=1" target="_blank">ASUS Tinker Board Is An Interesting ARM SBC For About $60 USD @ Phoronix</a></li>
<li><a href="https://www.techpowerup.com/reviews/Vertagear/SL-5000/" target="_blank">Vertagear SL5000 Gaming Chair @ techPowerUp</a></li>
</ul>
<p>&nbsp;</p>
<p><a href="https://www.pcper.com/news/General-Tech/Skimmer-Scanner-start-protecting-yourself-pump" target="_blank">read more</a></p>https://www.pcper.com/news/General-Tech/Skimmer-Scanner-start-protecting-yourself-pump#commentsGeneral Techbluetoothsecurityskimmer scannerMon, 25 Sep 2017 17:12:50 +0000Jeremy Hellstrom68488 at https://www.pcper.comTexting troubles with 2FAhttps://www.pcper.com/news/General-Tech/Texting-troubles-2FA
<p>Two factor authentication is the way to go when dealing with important information online, unfortunately the most common way of enabling 2FA has proven rather vulnerable.&nbsp; With just your name, surname and phone number an unsavoury type could use a vulnerability on cellular networks to gain access to your accounts.&nbsp; The example given over at Slashdot is of a Coinbase wallet with 2FA, registered with a Gmail address also protected by 2FA, which the security researchers easily took control of.&nbsp; <a href="https://it.slashdot.org/story/17/09/18/2039207/why-you-shouldnt-use-texts-for-two-factor-authentication">Take a look at the article</a> for more details on the SS7 network vulnerabilities this attack exploits as well as better ways of making use of 2FA.&nbsp;</p>
<p>If you do intend to continue to use SMS as part of your 2FA, at least consider disabling the feature on your phone which allows you to breifly read a text without unlocking your phone.</p>
<p class="rtecenter"><div class = "center-article-image"><a href="/news/General-Tech/Texting-troubles-2FA" class="inline-image-link" title="View: cell-tower-chemtrails-hendersonville-header11.jpg"><img src="/files/imagecache/article_max_width/news/2017-09-19/cell-tower-chemtrails-hendersonville-header11.jpg" alt="cell-tower-chemtrails-hendersonville-header11.jpg" title="cell-tower-chemtrails-hendersonville-header11.jpg" class="pcper-inline" width="602" height="452" /></a></div></p>
<blockquote><p>&quot;The report notes of several ways you can protect yourself from this sort of attack: &quot;On some services, you can revoke the option for SMS two-factor and account recovery entirely, which you should do as soon as you&#39;ve got a more secure app-based method established. Google, for instance, will let you manage two-factor and account recovery here and here; just set up Authenticator or a recovery code, then go to the SMS option for each and click &#39;Remove Phone.&#39;&quot;</p>
</blockquote>
<p>Here is some more Tech News from around the web:</p>
<p><b><a href="http://forums.pcper.com/forumdisplay.php?f=54">Tech Talk</a></b></p>
<ul>
<li><a href="https://www.theinquirer.net/inquirer/news/3017613/surface-pro-3-users-cant-boot-from-latest-windows-insider-builds" target="_blank">Surface Pro 3 users can&#39;t boot from latest Windows Insider Builds @ The Inquirer</a></li>
<li><a href="http://nanotechweb.org/cws/article/tech/69957" target="_blank">Aluminium oxide film staves off battery ageing @ Nanotechweb</a></li>
<li><a href="http://www.theregister.co.uk/2017/09/18/ford_virtual_reality/" target="_blank">Sure, HoloLens is cute, but Ford was making VR work before it was cool @ The Register</a></li>
<li><a href="https://arstechnica.com/gadgets/2017/09/ios-11-thoroughly-reviewed/" target="_blank">iOS 11, thoroughly reviewed @ Ars Technica</a></li>
<li><a href="http://www.theregister.co.uk/2017/09/18/ss7_vuln_bitcoin_wallet_hack_risk/" target="_blank">Someone checked and, yup, you can still hijack Gmail, Bitcoin wallets etc via dirty SS7 tricks @ The Register</a></li>
<li><a href="https://www.theinquirer.net/inquirer/news/3017630/electronic-frontier-foundation-resigns-from-w3c-over-drm-standard-decision" target="_blank">EFF resigns from W3C over DRM standard decision @ The Inquirer</a></li>
<li><a href="https://www.techspot.com/news/71034-upgrade-pc-please-episode-3-core-hi-five.html" target="_blank">Upgrade My PC Please! Episode 3: Core Hi Five! @ TechSpot</a></li>
</ul>
<p>&nbsp;</p>
<p><a href="https://www.pcper.com/news/General-Tech/Texting-troubles-2FA" target="_blank">read more</a></p>https://www.pcper.com/news/General-Tech/Texting-troubles-2FA#commentsGeneral Tech2fasecuritysmsTue, 19 Sep 2017 18:07:57 +0000Jeremy Hellstrom68453 at https://www.pcper.comProper per app permissions arriving to Windows 10https://www.pcper.com/news/General-Tech/Proper-app-permissions-arriving-Windows-10
<p>The new Creators Update for Windows 10 just received a noteworthy upgrade.&nbsp; Installed applications will now need your agreement to collect and transmit metadata such as your location and other information.&nbsp; Many of the concerns raised by Windows 10 users focused on the current configuration which defaults to apps being allowed permission to track and send information; it can be turned off by a user but only after the fact.&nbsp; Now applications will be installed with telemetry disabled by default unless a user agrees to the collection of information during the installation.&nbsp; There are cases in which it is beneficial to send your usage information, especially Windows error reports, but that was no excuse to enable that ability across the board.&nbsp; <a href="https://www.theinquirer.net/inquirer/news/3017342/microsoft-details-more-privacy-settings-in-windows-10-fall-creators-update">The Inquirer also mentions</a> that the Enterprise version will offer greater control and limit the OS to local notifications of serious issues or updates.</p>
<p class="rtecenter"><div class = "center-article-image"><a href="/news/General-Tech/Proper-app-permissions-arriving-Windows-10" class="inline-image-link" title="View: index.png"><img src="/files/imagecache/article_max_width/news/2017-09-14/index.png" alt="index.png" title="index.png" class="pcper-inline" width="486" height="104" /></a></div></p>
<blockquote><p>&quot;Starting with the new Creators Update, you will be required to explicitly give permission for each piece of access and there&#39;s even a full privacy statement to wallow through (or more likely ignore, make tea) during install.&quot;</p>
</blockquote>
<p>Here is some more Tech News from around the web:</p>
<p><b><a href="http://forums.pcper.com/forumdisplay.php?f=54">Tech Talk</a></b></p>
<ul>
<li><a href="http://www.eetimes.com/document.asp?doc_id=1332270" target="_blank">Samsung Says EUV on Schedule for 2018 @ EETimes</a></li>
<li><a href="http://www.digitimes.com/news/a20170914PD211.html" target="_blank">Acer 1H17 gaming LCD monitor shipments hike 103% @ DigiTimes</a></li>
<li><a href="https://www.theinquirer.net/inquirer/news/3017359/iphone-x-tourism-is-illegal-and-doesnt-actually-save-you-much" target="_blank">&#39;iPhone X tourism&#39; is illegal (and doesn&#39;t actually save you much) @ The Inquirer</a></li>
<li><a href="https://www.hardocp.com/news/2017/09/14/psychonauts_available_for_free_on_humble_bundle" target="_blank">Psychonauts Is Available for Free on Humble Bundle @ [H]ard|OCP</a></li>
<li><a href="https://www.theregister.co.uk/2017/09/13/dragonfire_laser_turret_plans/" target="_blank">Giant frikkin&#39; British laser turret to start zapping stuff next year @ The Register</a></li>
<li><a href="https://www.theregister.co.uk/2017/09/13/apples_high_price_marginal_gain_iphone_strategy_leaves_it_stuck_in_the_mud/" target="_blank">Sacre bleu! Apple&#39;s high price, marginal gain iPhone strategy leaves it stuck in the mud @ The Register</a></li>
</ul>
<p>&nbsp;</p>
<p><a href="https://www.pcper.com/news/General-Tech/Proper-app-permissions-arriving-Windows-10" target="_blank">read more</a></p>https://www.pcper.com/news/General-Tech/Proper-app-permissions-arriving-Windows-10#commentsGeneral Techmicrosoftsecuritywindows 10Thu, 14 Sep 2017 18:40:37 +0000Jeremy Hellstrom68437 at https://www.pcper.comSo, about that D‑Link DIR 850L wireless AC1200 you might be using ...https://www.pcper.com/news/General-Tech/So-about-D%E2%80%91Link-DIR-850L-wireless-AC1200-you-might-be-using
<p>If you have a D-Link DIR 850L wireless router or know anyone that does, you should unplug it without delay.&nbsp; The Register posted <a href="https://www.theregister.co.uk/2017/09/12/dlink_router_security_fail/">a link to the recently released findings of security researcher Pierre Kim</a>, who originally contacted D-Link in February about the flaws only to see a single patch released since then.&nbsp; The vulnerabilities are rather severe, ranging from a lack of verification for firmware images, through stored default private keys to an actual buit in backdoor.&nbsp; The router is <a href="https://www.dd-wrt.com/wiki/index.php/Known_incompatible_devices">not compatible with DD-WRT</a> so you cannot resolve the issue through that method; it should be treated as a brick until D-Link resolves these issues in an update.</p>
<p class="rtecenter"><div class = "center-article-image"><a href="/news/General-Tech/So-about-D%E2%80%91Link-DIR-850L-wireless-AC1200-you-might-be-using" class="inline-image-link" title="View: DIR850L1664x936FRONT.png"><img src="/files/imagecache/article_max_width/news/2017-09-13/DIR850L1664x936FRONT.png" alt="DIR850L1664x936FRONT.png" title="DIR850L1664x936FRONT.png" class="pcper-inline" width="602" height="339" /></a></div></p>
<blockquote><p>&quot;A security researcher has shamed D‑Link by publicly disclosing 10 serious, as-yet unpatched vulnerabilities in a line of consumer-grade routers without notifying the vendor first.&quot;</p>
</blockquote>
<p>Here is some more Tech News from around the web:</p>
<p><b><a href="http://forums.pcper.com/forumdisplay.php?f=54">Tech Talk</a></b></p>
<ul>
<li><a href="https://www.theregister.co.uk/2017/09/12/apples_adoption_qi_ends_wireless_charging_wars/" target="_blank">Apple&#39;s adoption of Qi signals the end of the wireless charging wars @ The Register</a></li>
<li><a href="http://www.digitimes.com/news/a20170913PD210.html" target="_blank">TSMC starts equipment move-in at Nanjing plant @ DigiTimes</a></li>
<li><a href="https://www.theregister.co.uk/2017/09/12/september_2017_patch_tuesday/" target="_blank">It&#39;s September 2017, and .NET lets PDFs hijack your Windows PC @ The Register</a></li>
</ul>
<p>&nbsp;</p>
<p><a href="https://www.pcper.com/news/General-Tech/So-about-D%E2%80%91Link-DIR-850L-wireless-AC1200-you-might-be-using" target="_blank">read more</a></p>https://www.pcper.com/news/General-Tech/So-about-D%E2%80%91Link-DIR-850L-wireless-AC1200-you-might-be-using#commentsGeneral Techac1200D-LinkDIR 850L wireless AC1200routersecurityWed, 13 Sep 2017 19:03:24 +0000Jeremy Hellstrom68428 at https://www.pcper.comFool me once, shame on me ... Chrome gives Symantec the cold shoulderhttps://www.pcper.com/news/General-Tech/Fool-me-once-shame-me-Chrome-gives-Symantec-cold-shoulder
<p>The original issue dates back two years ago, when a serious security issue was discovered effecting all Norton and Symantec products which allowed an attacker to easily infect your Windows kernel without any user interaction.&nbsp; Following that revelation were a round of firings at Symantec which were intended to reassure customers and security experts which were somewhat successful, until earlier this year.&nbsp; In January it was discovered that Symantec provided digital certificates to verify the authenticity of several questionable sites, including ones never authorized by ICANN.&nbsp; This has been enough for Google; Chrome will no longer trust older Symantec certs in version 66 and will not trust any as of version 70.&nbsp; <a href="https://www.theinquirer.net/inquirer/news/3017173/google-chrome-will-distrust-all-symantec-certificates-starting-with-chrome-66">The Inquirer provides a full timeline here</a>.</p>
<p class="rtecenter"><div class = "center-article-image"><a href="/news/General-Tech/Fool-me-once-shame-me-Chrome-gives-Symantec-cold-shoulder" class="inline-image-link" title="View: 1406048971_Symantec-Logo.png"><img src="/files/imagecache/article_max_width/news/2017-09-12/1406048971_Symantec-Logo.png" alt="1406048971_Symantec-Logo.png" title="1406048971_Symantec-Logo.png" class="pcper-inline" width="602" height="141" /></a></div></p>
<blockquote><p>&quot;The decision to remove Symantec certificates came as a result of the discovery of a dodgy certificate in 2015, leading to a fuller investigation that brought forward more issues with security at the beginning of this year.&quot;</p>
</blockquote>
<p>Here is some more Tech News from around the web:</p>
<p><b><a href="http://forums.pcper.com/forumdisplay.php?f=54">Tech Talk</a></b></p>
<ul>
<li><a href="http://nanotechweb.org/cws/article/tech/69857" target="_blank">Optical quantum memory shrinks to the nanoscale @ Nanotechweb</a></li>
<li><a href="https://www.theinquirer.net/inquirer/news/3017184/wd-gold-offers-12tb-of-storage-aimed-at-the-data-centre" target="_blank">WD Gold offers 12TB of storage aimed at the data centre @ The Inquirer</a></li>
<li><a href="https://yro.slashdot.org/story/17/09/12/074253/chatbot-lets-you-sue-equifax-for-up-to-25000-without-a-lawyer" target="_blank">Chatbot Lets You Sue Equifax For Up To $25,000 Without a Lawyer @ Slashdot</a></li>
<li><a href="https://www.theregister.co.uk/2017/09/11/storage_odds_and_sods_box/" target="_blank">What&#39;s a storage burrito, you ask? Why all the newsy tidbits chopped, cooked and wrapped up @ The Register</a></li>
</ul>
<p>&nbsp;</p>
<p><a href="https://www.pcper.com/news/General-Tech/Fool-me-once-shame-me-Chrome-gives-Symantec-cold-shoulder" target="_blank">read more</a></p>https://www.pcper.com/news/General-Tech/Fool-me-once-shame-me-Chrome-gives-Symantec-cold-shoulder#commentsGeneral TechchromesecuritysymantecTue, 12 Sep 2017 18:29:21 +0000Jeremy Hellstrom68422 at https://www.pcper.comYour Roomba is spying on you and that fridge sure looks suspicioushttps://www.pcper.com/news/General-Tech/Your-Roomba-spying-you-and-fridge-sure-looks-suspicious
<p>It should be obvious to most that the new generation of Roombas builds up and saves a map of your house, that is how it memorizes how to navigate your floors to vacuum them.&nbsp; One would also think it was obvious that this information should remain private; unfortunately iRobot does not seem to understand this.&nbsp; They are in discussion with Apple, Amazon and Alphabet to determine a price at which iRobot will sell them the map of the parts of your house which your Roomba has traversed.&nbsp; This should be somewhat disturbing to Roomba owners and likely very exciting to anyone who likes to wander univited into other people&#39;s homes.&nbsp; The security of the data is not likely to be difficult to overcome for a motivated and skilled individual so keep that in mind if you are shopping for a robot vacuum.&nbsp; <a href="https://www.theinquirer.net/inquirer/news/3014440/vacuuming-trip-hazard-roomba-could-sell-mapping-details">You can pop by The Inquirer</a> to read iRobot chief executive Colin Angle&#39;s bizarre response to tweets from concerned customers.</p>
<p class="rtecenter"><div class = "center-article-image"><a href="/news/General-Tech/Your-Roomba-spying-you-and-fridge-sure-looks-suspicious" class="inline-image-link" title="View: vacuuming-money.jpg"><img src="/files/imagecache/article_max_width/news/2017-07-25/vacuuming-money.jpg" alt="vacuuming-money.jpg" title="vacuuming-money.jpg" class="pcper-inline" width="602" height="401" /></a></div></p>
<blockquote><p>&quot;VACUUM CLEANER COMPANY iRobot, responsible for the &#39;smart&#39; Roomba vacuum, is considering doing something really dumb - selling user mapping data to companies that would hand over how your house is laid out.&quot;</p>
</blockquote>
<p>Here is some more Tech News from around the web:</p>
<p><b><a href="http://forums.pcper.com/forumdisplay.php?f=54">Tech Talk</a></b></p>
<ul>
<li><a href="https://www.theregister.co.uk/2017/07/24/microsofts_ai_chip_could_let_you_do_deep_learning_on_device/" target="_blank">HoloLens: Microsoft brags about AI chip in next-gen techno-goggles @ The Register</a></li>
<li><a href="https://hackaday.com/2017/07/21/linux-fu-better-bash-scripting/" target="_blank">Linux Fu: Better Bash Scripting @ Hack a Day</a></li>
<li><a href="https://www.theinquirer.net/inquirer/news/3014448/samsung-warns-of-my-knox-glitch-that-could-see-data-lost-forever" target="_blank">Samsung warns of My Knox glitch that could see data lost forever @ The Inquirer</a></li>
<li><a href="https://hardware.slashdot.org/story/17/07/25/1456226/intel-exits-the-maker-movement" target="_blank">Intel Exits the Maker Movement @ Slashdot</a></li>
<li><a href="https://www.theregister.co.uk/2017/07/24/gone_daddy_gone_godaddy_offloads_its_cloud_businesses/" target="_blank">Gone daddy gone: GoDaddy offloads its cloud businesses @ The Register</a></li>
<li><a href="https://tech.slashdot.org/story/17/07/25/1615220/adobe-announces-that-in-2020-flash-player-will-reach-its-end-of-life-in-light-of-newer-technologies" target="_blank">Adobe Announces that in 2020, Flash Player Will Reach Its &#39;End-of-Life&#39; in Light of Newer Technologies @ Slashdot</a></li>
<li><a href="https://arstechnica.com/gaming/2017/07/mame-devs-are-cracking-open-arcade-chips-to-get-around-drm/" target="_blank">MAME devs are cracking open arcade chips to get around DRM @ Ars Technica</a></li>
<li><a href="http://www.modders-inc.com/%ce%bbutonomous-%ce%bb-smartdesk-2-review/" target="_blank">&lambda;utonomous-&lambda; SmartDesk 2 @ Modders-Inc</a></li>
<li><a href="https://www.theinquirer.net/inquirer/news/3014417/snopes-is-heading-into-a-battle-for-its-very-existence-its-true" target="_blank">Snopes is heading into a battle for its very existence (it&#39;s true) @ The Inquirer</a></li>
</ul>
<p>&nbsp;</p>
<p><a href="https://www.pcper.com/news/General-Tech/Your-Roomba-spying-you-and-fridge-sure-looks-suspicious" target="_blank">read more</a></p>https://www.pcper.com/news/General-Tech/Your-Roomba-spying-you-and-fridge-sure-looks-suspicious#commentsGeneral TechgreedirobotroombasecurityTue, 25 Jul 2017 18:54:04 +0000Jeremy Hellstrom68158 at https://www.pcper.comDevil's Ivy, a voyeurs dream come truehttps://www.pcper.com/news/General-Tech/Devils-Ivy-voyeurs-dream-come-true
<p>gSOAP is a open-source code library which allows hardware to be configured and controlled via web connections and is used by hundreds of companies including Axis, Microsoft, IBM, Adobe and Xerox.&nbsp; It has a vulnerability which allows an attacker to trigger a stack overflow by sending a specific POST command over port 80 to a device, which in the case of cameras allows you to watch the live feed.&nbsp; The vulnerability was patched in an update to gSOAP so future products will not have this issue, however any camera built on that library which currently in use is vulnerable.&nbsp; The manufacturers would have to create an update to their own software and push it out to all the cameras currently in use to resolve this issue, and if there is one thing we know for sure about IoT products, it is that these patches do not tend to be created, let alone pushed out.</p>
<p><a href="https://www.theregister.co.uk/2017/07/19/iot_systems_open_to_hackers_gsoap/">For more depressing details you can pop by The Register</a>.</p>
<p class="rtecenter"><div class = "center-article-image"><a href="/news/General-Tech/Devils-Ivy-voyeurs-dream-come-true" class="inline-image-link" title="View: images.jpg"><img src="/files/imagecache/article_max_width/news/2017-07-20/images.jpg" alt="images.jpg" title="images.jpg" class="pcper-inline" width="256" height="192" /></a></div></p>
<blockquote><p>&quot;Security researchers investigating internet-connected video cameras have uncovered a bug that could conceivably leave millions of devices open to easy pwnage.&quot;</p>
</blockquote>
<p>Here is some more Tech News from around the web:</p>
<p><b><a href="http://forums.pcper.com/forumdisplay.php?f=54">Tech Talk</a></b></p>
<ul>
<li><a href="https://www.theinquirer.net/inquirer/news/3014169/intel-has-eliminated-its-entire-wearables-division" target="_blank">Intel has &#39;eliminated&#39; its entire wearables division @ The Inquirer</a></li>
<li><a href="https://www.theinquirer.net/inquirer/news/3014185/microsoft-will-support-windows-10-on-intel-atom-clover-trail-after-all-a-bit" target="_blank">Microsoft will support Windows 10 on Clover Trail after all (well, a bit) @ The Inquirer</a></li>
<li><a href="https://news.slashdot.org/story/17/07/19/2050232/ethereum-co-founder-says-cryptocurrencies-are-a-ticking-time-bomb" target="_blank">Ethereum Co-Founder Says Cryptocurrencies Are &#39;a Ticking Time Bomb&#39; @ Slashdot</a></li>
<li><a href="http://www.techarp.com/events/kaspersky-lab-cybersecurity-conference/" target="_blank">The Kaspersky Palaeontology of Cybersecurity Conference @ TechARP</a></li>
<li><a href="http://www.hardwaresecrets.com/amazon-echo-show/" target="_blank">Amazon Echo Show @ Hardware Secrets</a></li>
<li><a href="https://www.theregister.co.uk/2017/07/19/apple_patches_ios_os_x_flaws/" target="_blank">Apple hurls out patches for dozens of security holes in iOS, macOS @ The Register</a></li>
</ul>
<p>&nbsp;</p>
<p><a href="https://www.pcper.com/news/General-Tech/Devils-Ivy-voyeurs-dream-come-true" target="_blank">read more</a></p>https://www.pcper.com/news/General-Tech/Devils-Ivy-voyeurs-dream-come-true#commentsGeneral TechcamerasDevil's IvygSOAPiotsecurityThu, 20 Jul 2017 19:50:48 +0000Jeremy Hellstrom68145 at https://www.pcper.comDoes this look infected to you? Google launches a SAMBA app for Androidhttps://www.pcper.com/news/General-Tech/Does-look-infected-you-Google-launches-SAMBA-app-Android
<p>If you missed out on having all your files encrypted and the chance to send bitcoin to a bunch of misanthropes who have no plans on unencrypting those files after you do, then <a href="https://www.theregister.co.uk/2017/07/07/google_ships_wannacrypt_for_android_disguised_as_samba_app/">download this new app from Google Play</a>!&nbsp; Then you can enable SMBv1 on all your other machines so your Android can share the virus amongst your other machines, perhaps you could even share this unforgettable experience&nbsp; with your friends and family.&nbsp; Do you really trust that the patches applied to this outdated network file sharing protocol will protect from the next wave of attacks or will you follow the advice from Microsoft&#39;s Ned Pyle that The Register quoted, <a href="https://www.theregister.co.uk/2017/07/07/google_ships_wannacrypt_for_android_disguised_as_samba_app/">&quot;Stop using SMBv1&quot;</a>.&nbsp; There are a lot of other ways to share your files, most are even more effective than SMBv1 and are certainly more secure.</p>
<p class="rtecenter"><div class = "center-article-image"><a href="/news/General-Tech/Does-look-infected-you-Google-launches-SAMBA-app-Android" class="inline-image-link" title="View: seriously.png"><img src="/files/imagecache/article_max_width/news/2017-07-10/seriously.png" alt="seriously.png" title="seriously.png" class="pcper-inline" width="602" height="1070" /></a></div></p>
<blockquote><p>&quot;This made Google&#39;s decision so odd, The Register wondered if the app were faking the Google brand, but no: the source code linked from the app is at the Chocolate Factory&#39;s GitHub repo.&quot;</p>
</blockquote>
<p>Here is some more Tech News from around the web:</p>
<p><b><a href="http://forums.pcper.com/forumdisplay.php?f=54">Tech Talk</a></b></p>
<ul>
<li><a href="https://www.theinquirer.net/inquirer/news/3013516/microsoft-365-bundles-windows-10-and-office-for-smbs-and-enterprises" target="_blank">Microsoft 365 bundles Windows 10 and Office for SMBs and enterprises @ The Inquirer</a></li>
<li><a href="https://www.theinquirer.net/inquirer/news/3013497/fifty-year-old-multics-os-is-back-to-life-on-raspberry-pi" target="_blank">48-year-old Multics OS comes back to life on the Raspberry Pi @ The Inquirer</a></li>
<li><a href="https://www.theregister.co.uk/2017/07/07/someones_phishing_us_nuke_power_stations_so_far_no_kaboom/" target="_blank">Someone&#39;s phishing US nuke power stations. So far, no kaboom @ The Register</a></li>
<li><a href="http://www.techarp.com/articles/palaeontology-cyberattacks-vitaly-kamluk/" target="_blank">The Palaeontology of Cyberattacks by Vitaly Kamluk @ TechARP</a></li>
<li><a href="http://www.techarp.com/articles/bitscout-cyber-free-forensics-tool/" target="_blank">The BitScout Free Cyber Forensics Tool @ TechARP</a></li>
<li><a href="http://www.techarp.com/articles/eugene-kaspersky-exclusive-kremlin-ties/" target="_blank">Eugene Kaspersky Interview : No Kremlin Ties! @ TechARP</a></li>
<li><a href="https://hackaday.com/2017/07/09/a-poor-mans-laser-cnc-engraver/" target="_blank">A Poor-Man&rsquo;s Laser CNC Engraver @ Hack a Day</a></li>
</ul>
<p>&nbsp;</p>
<p><a href="https://www.pcper.com/news/General-Tech/Does-look-infected-you-Google-launches-SAMBA-app-Android" target="_blank">read more</a></p>https://www.pcper.com/news/General-Tech/Does-look-infected-you-Google-launches-SAMBA-app-Android#commentsGeneral Techandriodgooglepetyasambasecuritysmbv1wannacryptMon, 10 Jul 2017 16:52:05 +0000Jeremy Hellstrom68088 at https://www.pcper.comChange that default RasPi password, unless you meant to be donating cryptocurrencyhttps://www.pcper.com/news/General-Tech/Change-default-RasPi-password-unless-you-meant-be-donating-cryptocurrency
<p>If you are using a Raspberry Pi and did not set up two factor authentication or even worse, never changed the default passwords on the system then there is a very good chance you are mining for someone other than yourself.&nbsp; There is a new piece of malware out there, in addition to the many which already exist, targeting Raspberry Pi machines and recruiting them into a mining group, instead of the usual usage which is to enlist them in a botnet for DDOS attacks.&nbsp; <a href="https://hackaday.com/2017/06/08/raspberry-pi-malware-mines-bitcoin/">Hack a Day has some additional suggestions</a>, over and above the glaringly obvious recommendation to not keep default passwords; at least in this particular case they are not hard coded into the system.</p>
<p class="rtecenter"><div class = "center-article-image"><a href="/news/General-Tech/Change-default-RasPi-password-unless-you-meant-be-donating-cryptocurrency" class="inline-image-link" title="View: ethereum.jpg"><img src="/files/imagecache/article_max_width/news/2017-06-13/ethereum.jpg" alt="ethereum.jpg" title="ethereum.jpg" class="pcper-inline" width="602" height="405" /></a></div></p>
<blockquote><p>&quot;According to Russian security site [Dr.Web], there&rsquo;s a new malware called Linux.MulDrop.14 striking Raspberry Pi computers. In a separate posting, the site examines two different Pi-based trojans including Linux.MulDrop.14. That trojan uses your Pi to mine some form of cryptocurrency. The other trojan sets up a proxy server.&quot;</p>
</blockquote>
<p>Here is some more Tech News from around the web:</p>
<p><b><a href="http://forums.pcper.com/forumdisplay.php?f=54">Tech Talk</a></b></p>
<ul>
<li><a href="https://www.theregister.co.uk/2017/06/12/tata_bank_code_github/" target="_blank">Ta-ta, security: Bungling Tata devs leaked banks&#39; code on public GitHub repo, says IT bloke @ The Register</a></li>
<li><a href="https://news.slashdot.org/story/17/06/12/1953230/why-ethereum-is-outpacing-bitcoin" target="_blank">Why Ethereum Is Outpacing Bitcoin @ Slashdot</a></li>
<li><a href="https://www.theinquirer.net/inquirer/news/3011824/wimax-routers-from-huawei-and-zyxel-are-vulnerable-to-authentication-bypass-attacks" target="_blank">WiMax routers from Huawei and ZTE are vulnerable to authentication bypass attacks @ The Inquirer</a></li>
<li><a href="https://www.theregister.co.uk/2017/06/12/mac_ransomware_variant/" target="_blank">Mac ransomware author is giving away malicious code to script kiddies @ The Register</a></li>
<li><a href="www.digitimes.com/news/a20170613PB200.html" target="_blank">Biostar, ASRock, Colorful see rising demand for mining motherboards, says paper @ DigiTimes</a></li>
<li><a href="https://www.theregister.co.uk/2017/06/12/industroyer_malware/" target="_blank">Move over, Stuxnet: Industroyer malware linked to Kiev blackouts @ The Register</a></li>
</ul>
<p></p>
<p><a href="https://www.pcper.com/news/General-Tech/Change-default-RasPi-password-unless-you-meant-be-donating-cryptocurrency" target="_blank">read more</a></p>https://www.pcper.com/news/General-Tech/Change-default-RasPi-password-unless-you-meant-be-donating-cryptocurrency#commentsGeneral TechcryptocurrencyRaspberry PisecurityTue, 13 Jun 2017 16:31:01 +0000Jeremy Hellstrom67924 at https://www.pcper.comWindows 10 S ... the S could stand for securehttps://www.pcper.com/news/General-Tech/WIndows-10-S-S-could-stand-secure
<p>Microsoft recently pointed out that their new lite version of Windows 10 for students, Windows 10 S, is completely immune to all known malware.&nbsp; This does make sense, the OS is simply unable to install anything that is not from the Windows Store, which does not host any official malware, even if some of the available programs are not entirely useful.&nbsp; That security will last as long as no one figures out a way to fake the file validation and the connection to Microsoft&#39;s online store, or manages to get a malware infected file approved for sale on the store.&nbsp; Apple has had some experience which prove that is not an impossibility.&nbsp;&nbsp; <a href="https://tech.slashdot.org/story/17/06/08/1849211/no-known-ransomware-works-against-windows-10-s-says-microsoft">Pop by Slashdot for more</a>.</p>
<p>You could also chose to go with the OS of choice for financial institutions and various other industries, Windows XP Embedded with the Enhanced Write Filter.&nbsp; Generally secure and can be reset with a simple reboot ... in most cases.</p>
<p class="rtecenter"><div class = "center-article-image"><a href="/news/General-Tech/WIndows-10-S-S-could-stand-secure" class="inline-image-link" title="View: windows-apps-topic.png"><img src="/files/imagecache/article_max_width/news/2017-06-09/windows-apps-topic.png" alt="windows-apps-topic.png" title="windows-apps-topic.png" class="pcper-inline" width="602" height="602" /></a></div></p>
<blockquote><p>&quot;However, if you want to guarantee your safety from ransomware, then Microsoft points out there&#39;s an even more secure option to consider -- Windows 10 S. The new, hardened Windows 10 variant only runs apps from the Windows Store, which means it can&#39;t run programs from outside Microsoft&#39;s ecosystem, and that includes malware. Which is why, as Microsoft says, &quot;No known ransomware works against Windows 10 S.&quot;</p>
</blockquote>
<p>Here is some more Tech News from around the web:</p>
<p><b><a href="http://forums.pcper.com/forumdisplay.php?f=54">Tech Talk</a></b></p>
<ul>
<li><a href="http://techreport.com/review/32061/computex-2017-corsair-goes-high-concept" target="_blank">Computex 2017: Corsair goes high-concept @ </a></li>
<li><a href="https://www.theinquirer.net/inquirer/news/3011630/blackberry-keyone-consumer-alert-you-bend-it-you-broke-it" target="_blank">Blackberry KeyOne consumer alert: You bend it, you break it @ The Inquirer</a></li>
<li><a href="https://www.kitguru.net/peripherals/james-morris/linksys-wrt3200acm-ac3200-wireless-router-review/" target="_blank">Linksys WRT3200ACM AC3200 Wireless Router @ Kitguru</a></li>
<li><a href="https://tech.slashdot.org/story/17/06/09/141216/skype-retires-older-apps-for-windows-linux" target="_blank">Skype Retires Older Apps for Windows, Linux @ Slashdot</a></li>
<li><a href="https://www.nikktech.com/main/articles/peripherals/gaming-chairs/7876-cougar-armor-gaming-chair-review" target="_blank">COUGAR ARMOR Gaming Chair Review @ NikKTech</a></li>
</ul>
<p></p>
<p><a href="https://www.pcper.com/news/General-Tech/WIndows-10-S-S-could-stand-secure" target="_blank">read more</a></p>https://www.pcper.com/news/General-Tech/WIndows-10-S-S-could-stand-secure#commentsGeneral TechsecurityWindows 10 SFri, 09 Jun 2017 18:29:01 +0000Jeremy Hellstrom67904 at https://www.pcper.comAI to the rescue? Microsoft assimilates the security company Hexaditehttps://www.pcper.com/news/General-Tech/AI-rescue-Microsoft-assimilates-security-company-Hexadite
<p>If you have never heard of Hexadite you are not alone, the online security company was formed in 2014, headquartered in Boston but based in Tel-Aviv.&nbsp; As it was just purchased by Microsoft for around $100 million so they can integrate Hexadite&#39;s Automated Incident Response Solution into their Windows Defender Advanced Threat Protection.&nbsp; AIRS is not antivirus software, instead it is a tool that integrates with existing software and monitors for any alerts.&nbsp; Once an alert is detected the tool automatically investigates that alert and searches for solutions, in theory saving your security teams sanity by vastly reducing the number of alerts they must deal with directly.&nbsp; It will be interesting to see if this has an effect on the perception of companies and users as to the effectiveness of Windows Defender.&nbsp;</p>
<p><a href="https://www.theinquirer.net/inquirer/news/3010689/microsoft-buys-hexadite">More over at The Inquirer</a>.</p>
<p class="rtecenter"><div class = "center-article-image"><a href="/news/General-Tech/AI-rescue-Microsoft-assimilates-security-company-Hexadite" class="inline-image-link" title="View: Capture.PNG"><img src="/files/imagecache/article_max_width/news/2017-06-08/Capture.PNG" alt="Capture.PNG" title="Capture.PNG" class="pcper-inline" width="471" height="542" /></a></div></p>
<blockquote><p>&quot;Hexadite&#39;s technology and talent will augment our existing capabilities and enable our ability to add new tools and services to Microsoft&#39;s robust enterprise security offerings.&quot;</p>
</blockquote>
<p>Here is some more Tech News from around the web:</p>
<p><b><a href="http://forums.pcper.com/forumdisplay.php?f=54">Tech Talk</a></b></p>
<ul>
<li><a href="https://www.theinquirer.net/inquirer/news/3011558/museum-of-failure-will-help-us-learn-from-our-404s" target="_blank">Museum of Failure will help us learn from our 404s @ The Inquirer</a></li>
<li><a href="https://hackaday.com/2017/06/08/raspberry-pi-malware-mines-bitcoin/" target="_blank">Raspberry Pi Malware Mines BitCoin @ Hack a Day</a></li>
<li><a href="https://www.kitguru.net/tech-news/carl/amd-threadripper-and-vega-luke-and-leo-discuss/" target="_blank">AMD Threadripper and Vega: Luke and Leo discuss @ Kitguru</a></li>
<li><a href="http://www.digitimes.com/news/a20170607PD210.html" target="_blank">MediaTek considers placing chip orders with Globalfoundries @ DigiTimes</a></li>
<li><a href="https://www.theregister.co.uk/2017/06/07/android_adware_ksclean/" target="_blank">Pop-up Android adware uses social engineering to resist deletion @ The Register</a></li>
</ul>
<p>&nbsp;</p>
<p><a href="https://www.pcper.com/news/General-Tech/AI-rescue-Microsoft-assimilates-security-company-Hexadite" target="_blank">read more</a></p>https://www.pcper.com/news/General-Tech/AI-rescue-Microsoft-assimilates-security-company-Hexadite#commentsGeneral Techhexaditemicrosoftsecuritywindows defenderThu, 08 Jun 2017 16:42:07 +0000Jeremy Hellstrom67898 at https://www.pcper.comComing as a shock to no one, Wannacry can exploit Windows 10https://www.pcper.com/news/General-Tech/Coming-shock-no-one-Wannacry-can-exploit-Windows-10
<p>If you have an unpatched Windows installation you are vulnerable to the SMBv1 exploit, except perhaps if you are still on WinXP in which case your machine is more likely to crash than to start encrypting. Do yourself a favour and <a href="https://technet.microsoft.com/en-us/library/security/ms17-010.aspx">head to Microsoft to manually download the patch appropriate for your OS</a> and run it, if you already have it then it will tell you so, otherwise it will repair the vulnerability.&nbsp; The version of Wannacry and its progenitor, EternalBlue, which is making life miserable for users and techs everywhere does not currently go after Win10 machines but you can read how it can easily be modified to do so <a href="https://tech.slashdot.org/story/17/06/06/2048244/wannacry-exploit-could-infect-windows-10">over at Slashdot</a>.</p>
<p class="rtecenter"><div class = "center-article-image"><a href="/news/General-Tech/Coming-shock-no-one-Wannacry-can-exploit-Windows-10" class="inline-image-link" title="View: banner-datarecovery-cryingLady-416x260.jpg"><img src="/files/imagecache/article_max_width/news/2017-06-07/banner-datarecovery-cryingLady-416x260.jpg" alt="banner-datarecovery-cryingLady-416x260.jpg" title="banner-datarecovery-cryingLady-416x260.jpg" class="pcper-inline" width="416" height="260" /></a></div></p>
<blockquote><p>&quot;The publicly available version of EternalBlue leaked by the ShadowBrokers targets only Windows XP and Windows 7 machines. Researchers at RiskSense who created the Windows 10 version of the attack were able to bypass mitigations introduced by Microsoft that thwart memory-based code-execution attacks.&quot;</p>
</blockquote>
<p>Here is some more Tech News from around the web:</p>
<p><b><a href="http://forums.pcper.com/forumdisplay.php?f=54">Tech Talk</a></b></p>
<ul>
<li><a href="https://www.theinquirer.net/inquirer/news/3011401/microsoft-responds-kaspersky-antitrust-complaint" target="_blank">Microsoft slaps down Kaspersky&#39;s Windows 10 antitrust complaint @ The Inquirer</a></li>
<li><a href="https://benchmarkreviews.com/44670/lifetrak-zoom-hrv-wearable-body-computer-review/" target="_blank">LifeTrak Zoom HRV Wearable Body Computer </a></li>
<li><a href="https://www.theregister.co.uk/2017/06/06/fujitsu_tiein_with/" target="_blank">Fujitsu PC biz tie-in with Lenovo to happen &#39;soon&#39; @ The Register</a></li>
<li><a href="https://www.linux.com/news/why-you-must-patch-new-linux-sudo-security-hole-1" target="_blank">Why You Must Patch the New Linux sudo Security Hole @ Linux.com</a></li>
<li><a href="https://www.theregister.co.uk/2017/06/05/toshiba_flash_foundry_foxconn_apple_amazon_bid/" target="_blank">Foxconn, Amazon, Apple join Toshiba chip plant feeding frenzy @ The Register</a></li>
<li><a href="https://www.theinquirer.net/inquirer/news/3011448/ios-11-aint-coming-to-the-iphone-5-iphone-5c-or-ipad-4" target="_blank">iOS 11 ain&#39;t coming to the iPhone 5, iPhone 5C or iPad 4 @ The Inquirer</a></li>
<li><a href="https://www.nikktech.com/main/articles/security/security-systems/7875-trendnet-tv-nvr104k-4-channel-hd-poe-nvr-kit-review" target="_blank">TRENDnet TV-NVR104K 4-Channel HD PoE NVR Kit Review @ NikKTech</a></li>
</ul>
<p>&nbsp;</p>
<p><a href="https://www.pcper.com/news/General-Tech/Coming-shock-no-one-Wannacry-can-exploit-Windows-10" target="_blank">read more</a></p>https://www.pcper.com/news/General-Tech/Coming-shock-no-one-Wannacry-can-exploit-Windows-10#commentsGeneral Techsecuritywannacrywindows 10Wed, 07 Jun 2017 16:42:12 +0000Jeremy Hellstrom67889 at https://www.pcper.com